#Poland tightens cybersecurity rules targeting non #NATO suppliers
The government says the law is both a response to the rising number of cyberattacks and the need to implement the EU’s Network and Information Systems Directive 2 (NIS 2) directive, which was meant to be done by October 2024.
The main change creates a category of “high-risk” vendors who will be barred from providing goods or services to sectors considered vital to the state. One criterion for such a designation is a supplier’s origin and whether it is controlled by a country outside NATO.